Wireless communication processing system, wireless communication processing device, and wireless communication processing method

ABSTRACT

A wireless communication processing system for performing wireless communication processing operation between a plurality of apparatuses includes a first wireless communication processing device provided to first one of the plurality of apparatuses and having a first unique ID, and a second wireless communication processing device provided to second one of the plurality of apparatuses and having a second unique ID, in which in response to a connection request issued from a third wireless communication processing device to the first wireless communication processing device, the first wireless communication processing device transmits the unique ID of the third wireless communication processing device as a third unique ID to the second wireless communication processing device.

BACKGROUND OF THE INVENTION

[0001] The present invention relates to a wireless communicationprocessing technique for performing wireless communication processingoperation between a plurality of apparatuses.

[0002] In wireless communication such as wireless LAN or Bluetooth,since connection between apparatuses unlike wired communication cannotbe seen to the user, it is difficult for the user to detect anunauthorized connection by a cracker. For the purpose of preventing suchan unauthorized connection, authentication based on passkey is used. InBluetooth, for example, authentication called pairing is used so that,upon connection, an identical passkey is input from two communicatingapparatuses to form a mutually relied relationship. An input/outputmeans for the user to enter and confirm the display of the passkey isnot provided in the wireless communication apparatuses from theviewpoint of preventing increase of cost and mounting area, but thepasskey is previously set in another external device, so that, uponconnection, authentication using the passkey can be automaticallycarried out under control of a program.

[0003] In the above technique, when authentication is automaticallycarried out under control of the program of the wireless communicationapparatuses and even when a cracker tries many times to obtain theauthentication from an unauthorized apparatus, the user cannot notice itin most cases. To avoid this, it is an effective measure, for example,to automatically refuse the connection from the same apparatus when theapparatus ends in failure of the authentication by a preset number oftimes or more. Even in this case, however, since a communication rangeis limited in a network based on wireless LAN or Bluetooth, it is stillpossible for a cracker or unauthorized apparatus to try unauthorizedconnection to an apparatus other than the connection-rejected apparatusin the same network. For this reason, the above is also considered notto be a sufficiently effective measure of preventing the unauthorizedaccess.

SUMMARY OF THE INVENTION

[0004] In view of the above technique situations, it is an object of thepresent invention to provide a wireless communication processingtechnique which can solve the above problems, that is, which can preventa cracker or unauthorized apparatus from invading a wireless network andcan offer high security.

[0005] In accordance with an aspect of the present invention, the aboveobject can be attained, when a connection request is issued from anapparatus located outside of a network having a plurality of apparatusesconnected therein to ask a connection permission but its authenticationends in a failure, basically by transmitting the unique ID of theapparatus outside of the network to some or all of the plurality ofapparatuses in the network as the unique ID of theauthentication-failure or unauthorized apparatus to be commonlyrecognized thereby. Further, when the connection request is issued fromthe apparatus outside the network, the presence of the connectionrequest is displayed or informed on or to at least any of the pluralityof apparatuses in the network. More specifically, (1) a wirelesscommunication processing system for performing wireless communicationprocessing operation between a plurality of apparatuses includes a firstwireless communication processing device (e.g., reference numeral 15 ain this embodiment) having a first unique ID and provided to first one(e.g., reference numeral 10 in the present embodiment) of the aboveplurality of apparatuses as well as second wireless communicationprocessing devices (e.g., reference numerals 15 b, 15 c and 15 d in thisembodiment) having second unique ID's and provided to second ones (e.g.,reference numerals 11, 12 and 13 in the present embodiment) of the aboveplurality of apparatuses. The system is arranged so that, when aconnection request is issued from a third wireless communicationprocessing device (reference numeral 15 e in the embodiment) provided toan apparatus (reference numeral 14 in the present embodiment) other thanthe above plurality of apparatuses to the first wireless communicationprocessing device (e.g., reference numeral 15 a), and when the firstwireless communication processing device once allows the connection butends in a failure of its authentication; the first wirelesscommunication wireless communication processing device transmits a thirdunique ID as the unique ID of the third wireless communicationprocessing device to the second wireless communication processingdevices (e.g., reference numerals 15 b, 15 c and 15 d in the embodiment)as an authentication-failure unique ID or unauthorized apparatus uniqueID. And when the second wireless communication processing devicereceives the third unique ID and receives a connection request from thethird wireless communication processing device, the second devicerefuses the connection. (2) Similarly, a wireless communicationprocessing system includes a first wireless communication processingdevice (e.g., reference numeral 70 a in this embodiment) having a firstunique ID and provided to first one (e.g., reference numeral 10 in thepresent embodiment) of the above plurality of apparatuses as well assecond wireless communication processing devices (e.g., referencenumerals 70 b, 70 c and 70 d in this embodiment) having second uniqueID's provided to second ones (e.g., reference numerals 11, 12 and 13 inthe present embodiment) of the above plurality of apparatuses. Thesystem is arranged so that, when a connection request is issued from athird wireless communication processing device (reference numeral 70 ein the embodiment) provided to an apparatus (reference numeral 14 in thepresent embodiment) other than the above plurality of apparatuses to thefirst wireless communication processing device, the first wirelesscommunication processing device (e.g., 70 a in the embodiment) transmitsa third unique ID as the unique ID of the third wireless communicationprocessing device (reference 70 e in the embodiment) to the secondwireless communication processing devices (e.g., reference numerals 70b, 70 c and 70 d in the embodiment) as a connection request unique ID.And the second wireless communication processing devices receive thethird unique ID and display the presence of the connection request fromthe third wireless communication processing device or inform of thepresence, and also transmit connection acknowledge/negative-acknowledgeinformation to the first wireless communication processing device;meanwhile, the first wireless communication processing device receivesthe connection acknowledge/negative-acknowledge information andtransmits it to the third wireless communication processing device. (3)Further, a wireless communication processing device for performingwireless communication processing operation between a plurality ofapparatuses includes a wireless communication unit (reference numerals200, 200 a, 200 b, 200 c and 200 d) provided respectively to theplurality of apparatuses (reference numerals 10, 11, 12 and 13 in thepresent embodiment) and capable of transmitting and receiving theirunique ID's; a memory unit (reference numerals 202, 202 a, 202 b, 202 cand 202 d) in the embodiment) capable of storing therein the receivedunique ID and authenticating passkey; and a control unit (referencenumerals 203, 203 a, 203 b, 203 c and 203 d in the embodiment), whenissuing a connection acknowledge on the basis of the connection requestinformation received at the wireless a communication unit from theapparatus (reference numeral 14 in this embodiment) other than the aboveplurality of apparatuses and then ending in a failure of itsauthentication, for controllably transmitting the unique ID of theapparatus other than the plurality of apparatuses to other ones of theplurality of apparatuses in the network as an authentication-failureunique ID or unauthorized-apparatus unique ID. (4) Further, a wirelesscommunication processing device includes the wireless communication unit(reference numerals 200, 200 a, 200 b, 200 c and 200 d) providedrespectively to the plurality of apparatuses (reference numerals 10, 11,12 and 13 in the present embodiment) and capable of transmitting andreceiving their unique ID's; the memory unit (reference numerals 202,202 a, 202 b, 202 c and 202 d) in the embodiment) capable of storingtherein the received unique ID and authenticating passkey; and thecontrol unit (reference numerals 203, 203 a, 203 b, 203 c and 203 d inthe embodiment), when issuing a connection acknowledge on the basis ofthe connection request information received at the wirelesscommunication unit from the apparatus other than the above plurality ofapparatuses and then ending in a failure of its authentication, forcontrollably transmitting the unique ID of the apparatus other than theplurality of apparatuses to the other ones of the plurality ofapparatuses in the network as an authentication-failure unique ID orunauthorized-apparatus unique ID and, when receiving the transmittedunique ID, for controllably rejecting the connection with the apparatusother than the plurality of apparatuses of the network. (5) Further, awireless communication processing device includes the wirelesscommunication unit (reference numerals 200, 200 a, 200 b, 200 c and 200d) provided respectively to the plurality of apparatuses (referencenumerals 10, 11, 12 and 13 in the present embodiment) and capable oftransmitting and receiving their unique ID's; the memory unit (referencenumerals 202, 202 a, 202 b, 202 c and 202 d) in the embodiment) capableof storing therein the received unique ID and authenticating passkey;and the control unit (reference numerals 203, 203 a, 203 b, 203 c and203 d in the embodiment), when the above wireless communication unitreceives the connection request information from the apparatus otherthan the plurality of apparatuses, for controllably transmitting theunique ID of the apparatus other than the plurality of apparatuses toother ones of the plurality of apparatuses in the network as aconnection request unique ID. (6) In the above wireless communicationprocessing device as set forth in the above Item (3) or (4), the abovecontrol unit is arranged so as to store the frequency of the aboveauthentication failure in the memory unit and when the authenticationfailure frequency reached a predetermined value, to transmit the uniqueID of the apparatus (reference numeral 14 in this embodiment) other thanthe plurality of apparatuses to other ones of the plurality ofapparatuses of the network as an authentication failure unique ID orunauthorized apparatus unique ID. (7) A wireless communicationprocessing device for performing wireless communication processingoperation between a plurality of apparatuses includes the wirelesscommunication unit (reference numerals 200, 200 a, 200 b, 200 c and 200d) provided respectively to the plurality of apparatuses (referencenumerals 10, 11, 12 and 13 in the present embodiment) and capable oftransmitting and receiving their unique ID's; the memory unit (referencenumerals 202, 202 a, 202 b, 202 c and 202 d) in the embodiment) capableof storing therein the received unique ID and authenticating passkey;and the control unit (reference numerals 203, 203 a, 203 b, 203 c and203 d in the embodiment), when issuing a connection acknowledge on thebasis of the connection request information received at the wirelesscommunication unit from the apparatus other than the above plurality ofapparatuses and then ending in a success of its authentication, forcontrollably storing the unique ID of the apparatus other than theplurality of apparatuses in the memory unit as a connection acknowledgeunique ID. (8) Each apparatus is provided with such a wirelesscommunication processing device as mentioned in the above Items (3) to(7). (9) A wireless communication processing method for performingwireless communication processing operation between a plurality ofapparatuses includes the steps of storing a received unique ID and anauthenticating passkey; issuing a connection acknowledge on the basis ofconnection request information from an apparatus other than a pluralityof apparatuses in a network; transmitting, when issuing the connectionacknowledge and then ending in a failure of its authentication, theunique ID of the apparatus other than the plurality of apparatuses toother ones of the plurality of apparatuses in the network as anauthentication-failure unique ID or unauthorized-apparatus unique ID;and receiving the transmitted unique ID to reject the connection withthe apparatus other than the plurality of apparatuses of the network.(10) Similarly, a wireless communication processing method includes thesteps of storing a received unique ID and an authenticating passkey;receiving connection request information from an apparatus other than aplurality of apparatuses in a network and transmitting the unique ID ofthe apparatus other than the plurality of apparatuses in the network toother ones of the plurality of apparatuses of the network as aconnection request unique ID; receiving the transmitted connectionrequest unique ID to display the presence of the connection request orinform of it and also transmitting connection acknowledge information orconnection rejection information to the apparatus other than theplurality of apparatuses of the network.

[0006] Other objects, features and advantages of the invention willbecome apparent from the following description of the embodiments of theinvention taken in conjunction with the accompanying drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

[0007]FIG. 1 is a configuration of a wireless communication processingsystem in accordance with a first embodiment of the present invention;

[0008]FIG. 2 is a structure of the wireless communication processingdevice in FIG. 1;

[0009]FIG. 3 shows an example of information stored in a memory of thewireless communication processing device of FIG. 2;

[0010]FIG. 4 is a flow chart showing an exemplary procedure whenwireless connection is established with the configuration of FIG. 1;

[0011]FIG. 5 shows flows of exemplary procedure when a connection to anout-of-home apparatus which failed in authentication with theconfiguration of FIG. 1 was rejected;

[0012]FIG. 6 is a diagram for explaining a second embodiment of thepresent invention;

[0013]FIG. 7 shows an exemplary internal structure of a wirelesscommunication processing device as a third embodiment of the presentinvention; and

[0014]FIG. 8 is a flow chart for explaining an exemplary procedure whena wireless connection is established with use of the wirelesscommunication processing device of FIG. 7.

DESCRIPTION OF THE EMBODIMENTS

[0015] The present invention will be explained in connection withembodiments of the present invention with reference to the attacheddrawings.

[0016] FIGS. 1 to 5 show a first embodiment of the present invention.

[0017] The present embodiment shows an example of a wirelesscommunication processing system when domestic appliances in a home makeup a wireless home network and when an unauthorized apparatus locatedoutside of the home tries to invade the wireless home network. FIG. 1 isan exemplary configuration of a wireless communication processing systemin which domestic appliances are connected in a wireless network, FIG. 2is an exemplary structure of a wireless communication processing device,FIG. 3 shows an example of information stored in a memory unit of thewireless communication processing device, FIG. 4 shows a flow chart forexplaining an exemplary procedure when wireless connection isestablished in a home, and FIG. 5 shows flows of an exemplary procedurewhen a connection to an apparatus located outside of the home isrejected.

[0018] In FIG. 1, reference numeral 10 denotes an access point for thedomestic appliances to be connected through the wireless network,numeral 11 denotes a home controller for controlling the domesticappliances in the home through the wireless network within the home, 12denotes an air conditioner as one of the domestic appliances in thehome, 13 denotes a microwave oven, 15 a denotes a wireless communicationprocessing device provided to the access point 10, 15 b denotes awireless communication processing device provided to the home controller11, 15 c denotes a wireless communication processing device provided tothe air conditioner 12, and 15 d denotes a wireless communicationprocessing device provided to the microwave oven 13. The access point10, home controller 11, air conditioner 12 and microwave oven 13 areconnected by means of the wireless communication processing devices 15a, 15 b, 15 c and 15 d provided thereto in the form of a wirelessnetwork. More specifically, the home controller 11, air conditioner 12and microwave oven 13 are connected by means of the access point 10 inthe form of the wireless network, so that the air conditioner 12 andmicrowave oven 13 are controlled by operating the home controller 11. Inthe present embodiment, the home controller 11, air conditioner 12 andmicrowave oven 13 form in-home appliances. Reference numeral 14 denotesan out-of-home apparatus which tries to invade the wireless network inthe home, and numeral 15 e denotes a wireless communication processingdevice provided to the out-of-home apparatus 14.

[0019]FIG. 2 shows an exemplary internal structure of each of thewireless communication processing devices 15 a to 15 e.

[0020] In FIG. 2, reference numeral 200 denotes a wireless communicationunit as a wireless communication unit for wirelessly communicating withan external apparatus, numeral 201 denotes an unique ID for identifyingthe wireless communication unit 200, and 202 denotes a memory as amemory unit for storing therein a passkey when authentication of theexternal apparatus is carried out and authentication information of theapparatus which tried to be connected with the wireless communicationprocessing device. Numeral 203 denotes a controller as a control unitfor controlling the wireless communication unit 200 and memory 202 forcontrol of information to be stored and for control of access to thestored information. With respect to the wireless communication unit 200,it is assumed in the following explanation that reference numeral 200 arefers to a wireless communication unit of the wireless communicationprocessing device 15 a provided to the access point 10, numeral 200 brefers to a wireless communication unit of the wireless communicationprocessing device 15 b provided to the home controller 11, 200 c refersto a wireless communication unit of the wireless communicationprocessing device 15 c provided to the air conditioner 12, 200 d refersto a wireless communication unit of the wireless communicationprocessing device 15 d provided to the microwave oven 13, and 200 erefers to a wireless communication unit of the wireless communicationprocessing device 15 e, respectively. With regard to the unique ID 201,reference numeral 201 a refers to a unique ID for the wirelesscommunication processing device 15 a, numeral 201 b refers to a uniqueID for the wireless communication processing device 15 b, 201 c refersto a unique ID for the wireless communication processing device 15 c,201 d refers to a unique ID for the wireless communication processingdevice 15 d, and 201 e refers to a unique ID for the wirelesscommunication processing device 15 e. With respect to the memory 202,reference numeral 202 a refers to a memory in the wireless communicationprocessing device 15 a, numeral 202 b refers to a memory in the wirelesscommunication processing device 15 b, 202 c refers to a memory in thewireless communication processing device 15 c, 202 d refers to a memoryin the wireless communication processing device 15 d, and 202 e refersto a memory in the wireless communication processing device 15 e. Withregard to the controller 203, reference numeral 203 a refers to acontroller of the wireless communication processing device 15 a, numeral203 b refers to a controller of the wireless communication processingdevice 15 b, 203 c refers to a controller of the wireless communicationprocessing device 15 c, 203 d refers to a controller of the wirelesscommunication processing device 15 d, and 203 e refers to a controllerof the wireless communication processing device 15 e.

[0021]FIG. 3 shows an example of information stored in the memory 202 aof the wireless communication processing device 15 a provided to theaccess point 10. Stored in the memory 202 a as authenticationinformation are information about the unique ID of the wirelesscommunication processing device of an apparatus which tried to beconnected to the wireless communication processing device 15 a, e.g.,the unique ID 201 e of the wireless communication processing device 15 eof the out-of-home apparatus 14, information indicative offinished/unfinished authentication using a passkey 31 a, anauthentication-failure frequency with respect to the unique ID 201 e,and information indicative of acknowledge (permission) ornegative-acknowledge (rejection) of the connection to the wirelesscommunication processing devices. In the present embodiment, for theapparatus which failed 5 times in its authentication, the wirelesscommunication processing device refuses the connection to such anapparatus. For example, when the value of the unique ID is “0-0-0-5”,the apparatus ended in failure of the authentication 5 times. Thus theconnection rejection is “YES”, that is, the connection is rejected. As aconnection request unique ID, next, the unique ID of a party subjectedto a connection request by the access point 10 is stored. In thisexample, the unique ID 201 b of “0-0-0-1” and the unique ID 201 c of“0-0-0-2” are stored. It is assumed in this case that the unique ID 201a of the access point 10 is previously stored in the memories 202 b, 202c and 202 d. In order to start wireless communication, the passkey 31 ato be used upon authentication of the connection party is also stored.

[0022]FIG. 4 shows a diagram for explaining a procedure when a wirelessconnection is established in the wireless network of the home, and showsan exemplary flow for explaining an exemplary procedure when a wirelessconnection is established between the access point 10 and airconditioner 12. The access point 10 and air conditioner 12 exchange theidentical passkeys with each other for authentication and establish areliable connection therebetween.

[0023] In FIG. 4:

[0024] (1) When the air conditioner 12 is operated by a user, first ofall, the controller 203 c of the wireless communication processingdevice 15 c transmits connection request information 420 to the uniqueID unit 201 a of the access point 10 stored in the memory 202 c (stepST400). The connection request information 420 indicates that thetransmission originator asks a transmission destination to connect.

[0025] (2) Next, the controller 203 a of the wireless communicationprocessing device 15 a, when receiving the above connection requestinformation 420, returns connection acknowledge/negative-acknowledgeinformation to the air conditioner 12 (step ST401). When the controller203 a returns connection acknowledge information 421 indicative ofconnection acceptance, authentication is carried out between thewireless communication processing devices 15 a and 15 c. Whereas, whenthe controller 203 a returns connection negative-acknowledge information422 indicative of connection rejection in response to the connectionrequest information 420 received from the air conditioner 12, theconnection ends in a failure (step ST406). However, in order that a newdomestic appliance can be added in the home at any time, it is assumedthat, when authentication ended in failure 5 times and the connection isrejected and when the access point receives the connection requestinformation 420 from another apparatus not having the unique ID 201stored in the memory 202 a, the controller 203 a of the wirelesscommunication processing device 15 a returns the connection acknowledgeinformation 421.

[0026] (3) When the controller 203 a returns the connection acknowledgeinformation 421 indicative of connection permission and authenticationis carried out between the wireless communication processing devices 15a and 15 c, the controller 203 c of the air conditioner 12 extracts apasskey 31 c from the memory 202 c (step ST402).

[0027] (4) In the wireless communication processing device 15 a of theaccess point 10, subsequently, the controller 203 a extracts the passkey31 a from the memory 202 a (step ST403) and exchanges the passkey 31 cwith the passkey 31 a (step ST404).

[0028] (5) In the wireless communication unit 200 a of the wirelesscommunication processing device 15 a and in the wireless communicationunit 200 c of the wireless communication processing device 15 c; it isjudged whether or not the passkey 31 c coincides with the passkey 31 a(step ST405).

[0029] (6) When a coincidence between the passkeys 31 c and 31 a isdetermined, authentication is regarded as correctly done and theconnection is established successfully (step ST407).

[0030] (7) The controller 203 a of the wireless communication processingdevice 15 a of the access point 10 registers the successfulauthentication to the unique ID unit 201 c of the wireless communicationprocessing device of the air conditioner 12 in the memory 202 a (stepST408).

[0031] (8) Meanwhile, when a non-coincidence between the passkeys 31 cand 31 d is judged in the step ST405 in the above Item (5), theauthentication is regarded as a failure and the connection is cut off(step ST409). In the case of the authentication failure, this means thatunauthorized connection was tried and thus the controller 203 a of theaccess point 10 increments the authentication-failure frequency to theunique ID unit 201 c by “1” (step ST410).

[0032] In this connection, with respect to how to set the unique ID 201a and passkey 31 c of the access point 10 stored in the memory 202 c ofthe wireless communication processing device 15 c of the air conditioner12 and how to set the passkey 31 a stored in the memory 202 a of thewireless communication processing device 15 a of the access point 10, itis considered, as an example, for the home controller 11 to set thepasskey through another interface. Further, the above explanation hasbeen made in connection with the case where the connection request isissued to the access point 10 when the air conditioner 12 is operated bythe user, but the connection request may be issued when the power of theair conditioner 12 is turned ON or may be issued by another method, forexample, immediately after the passkey 31 c is set. Furthermore, withthe above arrangement, authentication has been carried out by exchangingthe passkeys 31 c and 31 a with each other. However, the presentinvention is not limited to this authentication method. It is assumedthat, even when the home controller 11 or microwave oven 13 is connectedto the access point 10, the same holds true similarly to the above.

[0033]FIG. 5 shows flows of an exemplary procedure when a connection toan out-of-home apparatus which ended in failure of authentication aplurality of times is rejected in order to prevent the out-of-homeapparatus from making an illegal access to the wireless network in thehome. The illustrated example is arranged so that domestic appliancesincluding the access point 10 in the home will not issue a connectionacknowledge to such an apparatus that ended in failure of authentication5 times.

[0034] In FIG. 5:

[0035] (1) First of all, the wireless communication unit 200 e of theout-of-home apparatus 14 transmits connection request information 420 tothe access point 10 (step ST500).

[0036] (2) Next, the controller 203 a of the wireless communicationprocessing device 15 a of the access point 10, when receiving theconnection request information 420, returns the connection acknowledgeinformation 421 (step ST501) and performs authenticating operation (stepST502), because the memory 202 a has no such unique ID as to reject theauthentication with regard to the unique ID 201 e of the wirelesscommunication processing device 15 e of the out-of-home apparatus 14.However, since the out-of-home apparatus 14 does not acknowledge by thepasskey 31 a stored in the memory 202 a, the passkey 31 e of theout-of-home apparatus 14 does not coincide with the passkey 31 a andthus the authentication ends in failure.

[0037] (3) When the authentication ends in failure, the controller 203 acauses the first-time authentication failure for the unique ID 201 e tobe stored in the memory 202 a (step ST503).

[0038] (4) Similarly, the operations of the connection request (stepST504), connection acknowledge (step ST505) and authentication-failure(step ST506) are repeated. And the authentication ends in failure 5times between the wireless communication processing device 15 a of theaccess point 10 and the wireless communication processing device 15 e ofthe out-of-home apparatus 14 (step ST507),

[0039] (5) the memory 202 a of the wireless communication processingdevice 15 a stores the unique ID 201 e of the wireless communicationprocessing device 15 e as a connection negative-acknowledge unique IDtherein, the controller 203 a of the wireless communication processingdevice 15 a transmits a unauthorized-apparatus unique ID 520 indicativeof the unique ID 201 e of the wireless communication processing device15 e to the wireless communication processing devices of the in-homeappliances connected in the wireless network, that is, to the wirelesscommunication processing device 15 b of the home controller 11, thewireless communication processing device 15 c of the air conditioner 12,and the wireless communication processing device 15 d of the microwaveoven 13 (step ST508). The unauthorized-apparatus unique ID 520 indicatesthe unique ID which ended in authentication failure 5 times.

[0040] (6) When the in-home appliance receives theunauthorized-apparatus unique ID 520, the unique ID 201 e of theconnection rejection apparatus indicative of the unauthorized-apparatusunique ID 520 is stored the memories 202 b to 202 d of the respectivewireless communication processing devices of the home controller 11, airconditioner 12 and microwave oven 13 as the in-home appliances.

[0041] (7) The respective in-home appliances, in response to theconnection request from the connection rejection unique ID unit 201 e,reject the connection. Thus, when the out-of-home apparatus 14 transmitsthe connection request information 420 to the access point 10 (stepST509), the access point 10 returns the connection negative-acknowledgeinformation 422 (step ST510). Even when the out-of-home apparatus 14transmits the connection request information 420 to one of the in-homeappliances (such as the home controller 11) (step ST511), the homecontroller 11 returns the connection negative-acknowledge information422 (step ST512). In this conjunction, although the out-of-homeapparatus 14 tried to be connected to the access point 10 in thisexample, the same holds true even when the out-of-home apparatus triesto be connected to another appliance.

[0042] In accordance with the aforementioned first embodiment, since theunique ID 201 e of authentication-failure out-of-home apparatus 14 isinformed to the appliances in the network, the unique ID 201 e of theout-of-home apparatus 14 which tried to illegally access but failed inits authentication can be commonly recognized not only by theillegally-accessed appliance but also by all the appliances in thenetwork. For this reason, the overall security of the network againstunauthorized access from a cracker or an unauthorized apparatus can beincreased.

[0043]FIG. 6 is a diagram for explaining the operation of a secondembodiment of the present invention.

[0044] Like the above first embodiment, the second embodiment is alsoarranged, as an example, to prevent a wireless network in a home frombeing unauthorizedly accessed from an apparatus outside of the home.Unlike the above first embodiment wherein the frequency of accessfailure only to the access point 10 is counted, however, the presentsecond embodiment is arranged so that not only the frequency of accessfailure to the access point 10 but also the frequency of out-of-homeapparatus 14 access failure to the home controller 11, air conditioner12 or microwave oven 13 can be grasped by the access point 10. As aresult, the total frequency in the entire network, by which theout-of-home apparatus 14 failed in its authentication, can be counted,whereby an apparatus which failed in authentication, e.g., 5 times canbe prevented from being connected to all the appliances in the home.

[0045] In FIG. 6:

[0046] (1) First of all, the wireless communication unit. 200 e of thewireless communication processing device 15 e of the out-of-homeapparatus 14 transmits the connection request information 420 to the airconditioner 12 (step ST600).

[0047] (2) The controller 203 c of the wireless communication processingdevice 15 c of the air conditioner 12, when receiving the connectionrequest information 420, returns, in response to the connection requestfrom the no-connection-rejection unique ID 201 e stored in the memory202 c, the connection acknowledge information 421 (step ST601) andperforms its authenticating operation (step ST602).

[0048] (3) Since the out-of-home apparatus 14 is not acknowledged by thepasskey 31 c stored in the memory 202 of the wireless communicationprocessing device 15 c of the air conditioner 12, the passkey 31 e doesnot coincide with the passkey 31 c and thus its authentication fails(step ST603).

[0049] (4) When the authentication fails, the controller 203 c of thewireless communication processing device 15 c of the air conditioner 12transmits a authentication-failure apparatus ID 620 from the wirelesscommunication unit 200 c of the wireless communication processing device15 c to the access point 10, home controller 11 and microwave oven 13(step ST604). The authentication-failure apparatus ID 620 is the ID ofthe apparatus which tried to be connected but failed in authentication,and refers to the unique ID 201 e in this example.

[0050] (5) The controllers of the wireless communication processingdevices of the respective appliances, when receiving theauthentication-failure apparatus ID 620; that is, the controller 203 aof the wireless communication processing device 15 a of the access point10, the controller 203 b of the wireless communication processing device15 b of the home controller 11, and the controller 203 d of the wirelesscommunication processing device 15 d of the microwave oven 13 incrementtheir authentication-failure frequencies to the unique ID 201 e by “1”,and the frequencies are stored in the memory 202 a of the wirelesscommunication processing device 15 a of the access point 10, the memory202 b of the wireless communication processing device 15 b of the homecontroller 11, and the memory 202 d of the wireless communicationprocessing device 15 d of the microwave oven 13 (step ST605).

[0051] (6) The out-of-home apparatus 14 issues a connection request toanother in-home appliance such as the home controller 11 (step ST606),the home controller 11 issues a connection acknowledge signal (stepST607) and performs its authenticating operation (step ST608). When thehome controller 11 ends in authentication failure and its authenticationfailure frequency reaches 5 (step ST609), the controller 203 b of thewireless communication processing device 15 b of the home controller 11transmits the unauthorized-apparatus unique ID 520 to another applianceconnected in the wireless network (step ST610).

[0052] (7) The controllers of the wireless communication processingdevices of the appliances when receiving the unauthorized-apparatusunique ID 520, that is, the controller 203 a of the wirelesscommunication processing device 15 a of the access point 10, thecontroller 203 c of the wireless communication processing device 15 c ofthe air conditioner 12, and the controller 203 d of the wirelesscommunication processing device 15 d of the microwave oven 13 store theunique ID 201 e for connection rejection in the memory 202 a of thewireless communication processing device 15 a, the memory 202 c of thewireless communication processing device 15 c, and the memory 202 d ofthe wireless communication processing device 15 d respectively. With it,in response to the connection request from the out-of-home apparatus 14,all the appliances in the home can act to reject the connection.

[0053] In accordance with the aforementioned second embodiment, sincethe authentication-failure unique ID 201 e is commonly used by theappliances connected in the network, all the appliances in the networkcan recognize the unauthorized access from the out-of-home apparatus 14which try to be connected thereto. For this reason, the system canreliably detect the access from the unauthorized apparatus, can reliablyblock invasion of the unauthorized apparatus into the network, and canobtain high security. The same holds true even for an unauthorizedaccess from a cracker.

[0054]FIGS. 7 and 8 are diagrams for explaining a third embodiment ofthe present invention.

[0055] The third embodiment is also arranged, as an example, to havesuch a configuration as to prevent an unauthorized access from anout-of-home apparatus in a wireless network within a home. The abovesecond embodiment has been arranged so that, even when the appliancereceives the connection request information 420 from the unique ID notstored in the memory 202 a, the controller 203 a automatically returnsthe connection acknowledge information 421. However, the thirdembodiment is arranged so that, an appliance receives the connectionrequest information 420 from a unique ID not stored in the memory 202 a,the appliance informs the user of the reception of the connectionrequest from an apparatus not registered, and the user decides theacknowledge or negative acknowledge of the connection. FIG. 7 is anexemplary internal structure of a wireless communication processingdevice, and FIG. 8 is a flow chart for explaining an exemplary procedurewhen wireless connection is carried out in the wireless network.

[0056] In FIG. 7, reference numeral 70 denotes a wireless communicationprocessing device and numeral 71 denotes a notification unit. When thenotification unit 71 receives the connection request information 420from the unique ID unit other than “authenticated” in the memory 202 andfrom the unique ID unit (which will be referred to as theunauthenticated unique ID (unit), hereinafter) not stored in the memory202, the controller 203 controls the notification unit to produce asound. Reference numeral 72 denotes a display unit. When receiving theconnection request information 420 from the unauthenticated unique IDunit, the controller 203 displays the unauthenticated unique IDdemanding the connection request on the display unit 72. Referencenumeral 73 denotes a connection acknowledge button. When the wirelesscommunication processing device receives the connection requestinformation 420 from the unauthenticated unique ID unit and theconnection acknowledge button is pushed, the controller 203 transmitsthe connection acknowledge information 421. Reference numeral 74 denotesa connection negative-acknowledge button. When the wirelesscommunication processing device receives the connection requestinformation 420 from the unauthenticated unique ID unit and theconnection negative-acknowledge button is pushed, the controller 203returns the connection negative-acknowledge information 422. A wirelesscommunication processing device 70 a is provided to the access point 10,a wireless communication processing device 70 b is provided to the homecontroller 11, a wireless communication processing device 70 c isprovided to the air conditioner 12, a wireless communication processingdevice 70 d is provided to the microwave oven 13, and a wirelesscommunication processing device 70 e is provided to the out-of-homeapparatus 14. In the following explanation, as in the above embodiment,with regard to the wireless communication unit 200, reference numeral200 a refers to the wireless communication unit of the wirelesscommunication processing device 70 a of the access point 10, numeral 200b refers to the refers to the wireless communication unit of thewireless communication processing device 70 b of the home controller 11,200 c refers to the wireless communication unit of the wirelesscommunication processing device 70 c of the air conditioner 12, 200 drefers to the wireless communication unit of the wireless communicationprocessing device 70 d of the microwave oven 13, and 200 e refers to thewireless communication unit of the wireless communication processingdevice 70 e of the out-of-home apparatus 14, respectively. With regardto the unique ID unit 201, reference numeral 201 a refers to the uniqueID unit of the wireless communication processing device 70 a, numeral201 b refers to the unique ID unit of the wireless communicationprocessing device 70 b, 201 c refers to the unique ID unit of thewireless communication processing device 70 c, 201 d refers to theunique ID unit of the wireless communication processing device 70 d, and201 e refers to the unique ID unit of the wireless communicationprocessing device 70 e. With regard to the memory 202, reference numeral202 a refers to the memory of the wireless communication processingdevice 70 a, numeral 202 b refers to the memory of the wirelesscommunication processing device 70 b, 202 c refers to the memory of thewireless communication processing device 70 c, 202 d refers to thememory of the wireless communication processing device 70 d, and 202 erefers to the memory of the wireless communication processing device 70e. With regard to the controller 203, reference numeral 203 a refers tothe controller of the wireless communication processing device 70 a,numeral 203 b refers to the controller of the wireless communicationprocessing device 70 b, 203 c refers to the controller of the wirelesscommunication processing device 70 c, 203 d refers to the controller ofthe wireless communication processing device 70 d, and 203 e refers tothe controller of the wireless communication processing device 70 e.

[0057]FIG. 8 is a flow chart for explaining an exemplary procedure in acase where, when the out-of-home apparatus 14 issues a connectionrequest to the access point 10, the wireless communication processingdevice 70 a, which does not establish authentication with theout-of-home apparatus 14, informs the user of the connection requestfrom the unique ID unit 201 e of the wireless communication processingdevice 70 e of the out-of-home apparatus 14, and the user selectivelyjudges the connection acknowledge or negative acknowledge.

[0058] In FIG. 8:

[0059] (1) First of all, the wireless communication unit 200 e of thewireless communication processing device 70 e of the out-of-homeapparatus 14 transmits the connection request information 420 to thewireless communication unit 200 a of the wireless communicationprocessing device 70 a of the access point 10 (step ST800).

[0060] (2) In response to the connection request from the unique ID unit201 e of the wireless communication processing device 70 e as aunauthenticated unique ID not stored in the memory 202 a of the wirelesscommunication processing device 70 a as “authenticated”, the controller203 a of the wireless communication processing device 70 a causes theq7la to produce a sound and causes a display unit 72 a to display theunique ID 201 e on the display unit 72 a (step ST801).

[0061] (3) The controller 203 a transmits a connection request unique ID820 to the wireless communication processing devices 70 b to 70 d in thehome via the wireless communication unit 200 a (step ST802). Theconnection request unique ID 820 is the unauthenticated unique ID unitwhich transmitted the connection request information 420, and in thisexample, refers to the unique ID unit 201 e.

[0062] (4) Even in the controllers 203 b to 203 d of the in-homewireless communication processing devices 70 b to 70 d which receivedthe connection request unique ID 820, the notification units 71 b to 71d are used to produce a sound and the display units 72 b to 72 d areused to display the memory 202 e thereon, like the controller 203 a ofthe access point 10.

[0063] (5) Input operation is carried out from the access point 10 orwireless communication processing device 70 a to 70 d (step ST804).

[0064] (6) The wireless communication processing device 70 a of theaccess point 10 is first used to input a connection permission orrejection (step ST805).

[0065] (7) When the user pushes a connection acknowledge button 73 a,the controller 203 a returns the connection acknowledge information 421to the out-of-home apparatus 14 (step ST806), establishing a successfulconnection (step ST807).

[0066] (8) When the user pushes a connection negative-acknowledge button74 a in the step ST805 in the above Item (6), the controller 203 areturns the connection negative-acknowledge information 422 to theout-of-home apparatus 14 (step ST808), ending in a connection failure(step ST809).

[0067] (9) Explanation will next be made as to user's input operationwith use of the in-home appliance. For example, the user enters aconnection permission or rejection with use of a connection acknowledgebutton 73 d of the wireless communication processing device 70 dprovided to the microwave oven 13 (step ST810).

[0068] (10) Pushing of the connection acknowledge button 73 d causes thecontroller 203 d of the wireless communication processing device 70 d ofthe access point 10 to transmit remote connection acknowledgeinformation 821 to the wireless communication processing device 70 a viathe wireless communication unit 200 d (step ST811). The remoteconnection acknowledge information 821 indicates the connectionpermission to the connection request from the connection request uniqueID 820.

[0069] (11) When the wireless communication unit 200 a of the wirelesscommunication processing device 70 a of the access point 10 receives theremote connection acknowledge information 821, the controller 203 areturns the connection acknowledge information 421 to the out-of-homeapparatus 14 (step ST806), establishing a successful connection (stepST807).

[0070] (12) When the user pushes a connection negative-acknowledgebutton 74 d of the wireless communication processing device 70 dprovided to the microwave oven 13 in the step ST810 in the above Item(9), the controller 203 d transmits remote connectionnegative-acknowledge information 822 to the wireless communication unit200 a of the wireless communication processing device 70 a of the accesspoint 10 via the wireless communication unit 200 d (step ST812). Theremote connection negative-acknowledge information 822 is informationindicative of the connection rejection to the connection request fromthe connection request unique ID 820.

[0071] (13) When the wireless communication unit 200 a of the wirelesscommunication processing device 70 a of the access point 10 receives theremote connection negative-acknowledge information 822, the controller203 a returns the connection negative-acknowledge information 422 to theout-of-home apparatus 14 (step ST808), ending in connection failure(step ST809).

[0072] Although notification of reception of the connection request fromthe unauthenticated unique ID has been done by producing a sound and bydisplaying the unique ID on the display unit in the aforementioned thirdembodiment, it is also possible, when the authentication with anexternal apparatus ended in failure, to inform the user of it to warmhim of the presence of an access of the unauthorized apparatus to theaccess point 10. Further, it is considered to display the presence of aconnection request from the unauthenticated apparatus with use of an LDEor the like.

[0073] In accordance with the third embodiment, the connection requestfrom the unauthenticated apparatus is informed to the user audibly andby displaying the unique ID on the display unit and the connectionpermission or rejection is determined by the user. Therefore, any accessfrom an unauthorized-apparatus can be prevented, high security can beobtained, the connection permission or rejection can be arbitrarilyselected, and a wide range of wireless communication processingoperation with an apparatus can be realized. Even an unauthorized accessfrom a cracker can be similarly avoided.

[0074] The inventions as the foregoing embodiments include (1) to (4)which follow.

[0075] (1) A wireless communication processing system for performingwireless communication processing operation between a plurality ofapparatuses, which includes a first wireless communication processingdevice provided to first one of the plurality of apparatuses and havinga first unique ID as its own unique ID and a second wirelesscommunication processing device provided to second one of the pluralityof apparatuses and having a second unique ID as its own unique ID,wherein, in response to a connection request sent from a third wirelesscommunication processing device provided to an apparatus other than theplurality of apparatuses to the first wireless communication processingdevice, the first wireless communication processing device acknowledgesthe connection, and when ending in authentication failure, transmits athird unique ID as the unique ID of the third wireless communicationprocessing device to the second wireless communication processing deviceas a authentication-failure unique ID or unauthorized-apparatus uniqueID.

[0076] (2) A wireless communication processing system for performingwireless communication processing operation between a plurality ofapparatuses, which includes a first wireless communication processingdevice provided to first one of the plurality of apparatuses and havinga first unique ID as its own unique ID and a second wirelesscommunication processing device provided to second one of the pluralityof apparatuses and having a second unique ID as its own unique ID,wherein, when a connection request is issued from a third wirelesscommunication processing device provided to an apparatus other than theplurality of apparatuses to the first wireless communication processingdevice, the first wireless communication processing device transmits athird unique ID as the unique ID of the third wireless communicationprocessing device to the second wireless communication processing deviceas a connection request unique ID.

[0077] (3) A wireless communication processing system for performingwireless communication processing operation between a plurality ofapparatuses, which includes a wireless communication unit provided tothe plurality of apparatuses and capable of transmitting and receivingunique ID's, a memory unit controllably for storing the received uniqueID and an authenticating passkey therein, and a control unit, when thewireless communication unit receives connection request information fromthe apparatus other than the plurality of apparatuses, for transmittingthe unique ID of the apparatus other than the plurality of apparatusesto other ones of the plurality of apparatuses as a connection requestunique ID, and when receiving the transmitted connection request uniqueID, for displaying the presence of the connection request or informingthereof, and transmitting connection permission or rejection informationto the apparatus other than the plurality of apparatuses.

[0078] (4) A control unit in a wireless communication processing deviceis arranged so that, when receiving the unique ID of a connectionrequest apparatus other than the plurality of apparatuses from any ofwireless communication processing devices of the plurality ofapparatuses as an authentication-failure unique ID, a frequency ofauthentication failure larger by “1” than a frequency ofauthentication-failure of the first wireless communication processingdevice with the apparatus other than the plurality of apparatuses isstored in a memory unit.

[0079] In accordance with the present invention, high security can beobtained and unauthorized access can be prevented.

[0080] It should be further understood by those skilled in the art thatalthough the foregoing description has been made on embodiments of theinvention, the invention is not limited thereto and various changes andmodifications may be made without departing from the spirit of theinvention and the scope of the appended claims.

What is claimed is:
 1. A wireless communication processing system forperforming wireless communication processing operation between aplurality of apparatuses, comprising: a first wireless communicationprocessing device provided to first one of said plurality of apparatusesand having a first unique ID; and a second wireless communicationprocessing device provided to second one of said plurality ofapparatuses and having a second unique ID, wherein, in response to aconnection request issued from a third wireless communication processingdevice provided to an apparatus other than said plurality of apparatusesto said first wireless communication processing device, the firstwireless communication processing device issues a connection permission,but when ending in authentication failure, the first wirelesscommunication processing device transmits the unique ID of the thirdwireless communication processing device as a third unique ID to saidsecond wireless communication processing device as anauthentication-failure or unauthorized-apparatus unique ID, the secondwireless communication processing device receives the third unique IDand, when receiving a connection request from said third wirelesscommunication processing device, the second wireless communicationprocessing device rejects the connection.
 2. A wireless communicationprocessing system for performing wireless communication processingoperation between a plurality of apparatuses, comprising: a firstwireless communication processing device provided to first one of saidplurality of apparatuses and having a first unique ID; and a secondwireless communication processing device provided to second one of saidplurality of apparatuses and having a second unique ID, wherein, when aconnection request is issued from a third wireless communicationprocessing device provided to an apparatus other than said plurality ofapparatuses to said first wireless communication processing device, thefirst wireless communication processing device transmits the unique IDof the third wireless communication processing device as a third uniqueID to said second wireless communication processing device as aconnection request unique ID, the second wireless communicationprocessing device receives the third unique ID, displays presence of theconnection request from said third wireless communication processingdevice or informs thereof, and transmits connection permission orrejection information to said first wireless communication processingdevice, the first wireless communication processing device receives theconnection permission or rejection information and transmits theinformation to said third wireless communication processing device.
 3. Awireless communication processing device for performing wirelesscommunication processing operation between a plurality of apparatuses,comprising: wireless communication means provided to said plurality ofapparatuses and capable of transmitting and receiving unique ID's;memory means for storing a received unique ID and an authenticatingpasskey therein; control means controllably for issuing a connectionpermission on the basis of connection request information from anapparatus other than said plurality of apparatuses received at saidwireless communication means and, when ending in authentication failure,for transmitting the unique ID of the apparatus other than the pluralityof apparatuses to other ones of said plurality of apparatuses as anauthentication-failure or unauthorized-apparatus unique ID.
 4. Awireless communication processing device for performing wirelesscommunication processing operation between a plurality of apparatuses,comprising: wireless communication means provided to said plurality ofapparatuses and capable of transmitting and receiving unique ID's;memory means for storing a received unique ID and authenticating passkeytherein; and control means controllably for issuing a connectionpermission on the basis of connection request information other than anapparatus other than said plurality of apparatuses received at saidwireless communication means and, when ending in authentication failure,for transmitting the unique ID of the apparatus other than the pluralityof apparatuses to other ones of said plurality of apparatuses as anauthentication-failure or unauthorized-apparatus unique ID and, whenreceiving the transmitted unique ID, for rejecting the connection fromthe apparatus other than the plurality of apparatuses.
 5. A wirelesscommunication processing device for performing wireless communicationprocessing operation between a plurality of apparatuses, comprising:wireless communication means provided to said plurality of apparatusesand capable of transmitting and receiving unique ID's; memory means forstoring a received unique ID and authenticating passkey therein; andcontrol means, when said wireless communication means receivesconnection request information from an apparatus other than theplurality of apparatuses, controllably for transmitting the unique ID ofthe apparatus other than the plurality of apparatuses to other ones ofsaid plurality of apparatuses as a connection request unique ID.
 6. Thewireless communication processing device as set forth in claim 3,wherein said control means controllably stores a frequency ofauthentication failure in said memory means and, when said frequency ofauthentication failure reaches a predetermined value, transmits theunique ID of the apparatus other than said plurality of apparatuses toother ones of said plurality of apparatuses as a authentication-failureor unauthorized-apparatus unique ID.
 7. A wireless communicationprocessing device for performing wireless communication processingoperation between a plurality of apparatuses, comprising: wirelesscommunication means provided to said plurality of apparatuses andcapable of transmitting and receiving unique ID's; memory means forstoring a received unique ID and an authenticating passkey therein; andcontrol means controllably for issuing a connection permission on thebasis of connection request information from the apparatus other thansaid plurality of apparatuses received at said wireless communicationmeans and, when ending in successful authentication, for storing theunique ID of the apparatus other than the plurality of apparatuses tosaid memory means as a connection permission unique Id.
 8. A wirelesscommunication processing method for performing wireless communicationprocessing operation between a plurality of apparatuses, comprising thesteps of: storing a received unique ID and an authenticating passkey;issuing a connection permission on the basis of connection requestinformation from an apparatus other than said plurality of apparatuses;when the connection permission is issued and authentication ends infailure, transmitting the unique ID of the apparatus other than saidplurality of apparatuses to other ones of said plurality of apparatusesas an authentication-failure or unauthorized-apparatus unique ID; andreceiving said transmitted unique ID and rejecting the connection fromthe apparatus other than said plurality of apparatuses.
 9. A wirelesscommunication processing method for performing wireless communicationprocessing operation, comprising the steps of: storing a received uniqueID and an authenticating passkey therein; receiving connection requestinformation from an apparatus other than said plurality of apparatusesand transmitting the unique ID of the apparatus other than the pluralityof apparatuses to other ones of said plurality of apparatuses as aconnection request unique ID; and receiving the transmitted connectionrequest unique ID, displaying presence of the connection request orinforming thereof, and transmitting connection permission or rejectioninformation to the apparatus other than said plurality of apparatuses.